CLAIMS 

Having thus described our invention, what we claim as 
new, and desire to secure by Letters Patent is: 

/l. A method for securelly handling an information 

unit by a first information processing device 
(2) interoperating /with a second secure 
information processing device (1) , in 
particular a chip pard, whereby the information 
unit is provided by an issuer, 

the method compri/sing the steps: 

providing (3, 251 35) the information unit from 
the issuer to thp first information processing 
device (2) , the /information unit being 
processed by a cryptographic process; 

providing at least one key for the 
cryptographic plrocess on the second secure 
information processing device (1) ; and 



cryptographicaily reprocessing (29, 38) the 



information un:. 



t by using the at least one key. 



The method according to claim 1, comprising: 



providing (3, 2 
the issuer to t: 
device (2 ) , the 
encrypted by us 
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, 35) the information unit from 
he first information processing 
information unit being 
ng at least a first key; 
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providing the fdjrst key from the issuer to the 
first information processing device (2) , the 
first key being/ encrypted by using at least a 
second key; 

providing the At least one second key on the 
second secure (Information processing device 
(1) ; 



interconnec 
processing 



ting 



devi 



the first information 
ce (2) and the second secure 
information processing device (1) ; 



on side of the 
processing dev|i 
first key by us 



decrypting (2S 



second secure information 

ce, decrypting (27) the at least 

ing the at least second key; and 



) the information unit by using 



the decrypted at least first key. 



The method according to claim 1, comprising: 



2 
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providing (3, 25, 35) the information unit from 
the issuer to the first information processing 
device (2) , the information unit being signed 
by using a signature; 
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providing the signature from the issuer to the 
first information processing device (2) , the 
signature beintj generated by using at least one 
key; 
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it) least 



providing the at/ least one key for signature 
verification on /the second secure information 
processing device (1) ; 

interconnecting the first information 
processing device (2) and the second secure 
information processing device (1) ; 



transferring 
verification 
processing 
processing 



the at least one key for signature 
rom the second secure information 
device to the first information 
ice; and 



de^ 



verifying the 
by using the 



The method ac 
decrypted at 
the first in 
the informat 
of the first 



first informat 



signature of the information unit 
t least one key. 



cording to claim 2, wherein the 
east first key is transferred to 
formation processing device (2) and 
ion unit is decrypted (29) on side 
device (2) . 



The method according to claim 1, wherein the 



ion processing device (2) 



provides a control command (26, 36) to the 
second secures information processing device (1) 
to initiate decryption of the at least first 
key by using the at least second key and/or to 
initiate transferring the signature key for 
signature verification from the second secure 
device to the .first device. 
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The method according "to claim 5, wherein the 
encrypted information unit, the encrypted first 
key, and/or the signature key, and/or the 
generated signature, and/or the control command 
are downloaded (2b, 35) from a central server 
(4) . 



The method accorfli 
second key and/ojr 
verification are 
second secure 
by the issuer. 



ng to claim 3, wherein the 
the key for signature 
/is securely stored on the 

(1) at time of its issuing 



device 



key 



The method accor 
least a third 
authentication 
respective 



inf ormat 



The method acco 
first device (2) 
release of the i 
issuer, depending 
the third key. 



ding to claim 2, wherein at 

is provided for external 

or release control of the 
ion unit. 



and/ 



rding 



to claim 8, wherein the 
is initiated to gather a new 
nformation unit from the 

on the respective status of 



The method according to claim 9, wherein the 
new release of tile information unit is 
downloaded from ^n internet server (4) provided 
by the issuer. 



iccord.Lng 



The method a 
least first key 
randomized between 



ail 



to claim 2, wherein the at 
,d/or the signature are/is 
different sessions of 
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providing the information unit from the issuer 
to the first device (2) . 
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The method accordi/ng to claim 1, wherein the 
first information/processing device (2) is a 
terminal device, /and the second secure 
information processing device (1) is a portable 
device . 
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The method according to claim 12, wherein the 
terminal device lis a chip card reader and the 
portable device/ is a chip card. 
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A system for securely, handling an information 
unit, comprising a first information processing 



device (2) int 



particular a c 
being provided 



iroperating with a second secure 



information processing device (1) , in 



hip card, the information unit 
by an issuer, 



comprising ; 

the first dev.i 
a storag 
unit; and 



ce (2) comprising 
s for storing the information 



the second s 

a storage 
for a c 



ecure 



device (1) comprising 
(6) for storing at least one key 
rjyptographic process; and 
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providing means foi cryptographically 
reprocessing the information unit by using the 
at least one key. 

The system according to claim 14, wherein 
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the first device 1(2) comprises 

a storage for storing the information 



unit, encr 
key, and a 
key, encryp 
key; 



the second secu 
a storage 
second key 
decrypting 
the at leafc 



providing means 
unit by using t|ie 



ted by using at least a first 
storage for storing the first 
:ed by using at least a second 



ife device (1) comprises 
6) for storing the at least one 

and processing means for 
the at least first key by using 
t second key; and 



for decrypting the information 
decrypted at least first key, 



The system according to claim 14, wherein 



the first device 
a storage 
and a signa 



a storage 



(2) comprises 
or storing the information unit 
ture for the information unit; 



the second secure device (1) comprises 



6 ) for storing at least one 



signature kley; 
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providing means for verifying the signature of 
the information unit /by using the at least one 
signature key. 
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The system according to claim 14, wherein the 
second secure device (1) provides an access 
control by means off the information unit. 



1 

41 
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18. 



The system according to claim 14, wherein the 
second secure devide (1) comprises a processor 
to make specific functions of the second secure 
device usable/acceasible on the first device or 
on at least a thirq device (5) attached to the 
first device. 
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The system according to claim 14, wherein the 
first device (2) domprises processing means for 
decrypting (29) tne information unit by use of 
the decrypted at least first key. 
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The system according to claim 14, wherein the 
second secure device (1) comprises means to 
initiate decrypt/ion of the at least first key 



by using the at 



to initiate transfer of the signature key for 



signature verif 
device to the f 

The system acco 
first device (2 
the encrypted i 
first key, and/ 
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least second key and/or means 



cation from the second secure 
rst device. 

rding to claim 14, wherein the 

comprises means to download 
nformation unit, the encrypted 
or the generated signature, 
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and/or the control pommand, from a central 
server (4) . 

The system according to claim 14, wherein the 
second secure deviice (1) comprises a non- 
erasable storage to store the second key and/or 
the signature key/ at time of its issuing. 



The system according to claim 14, wherein the 
first device (2) land/or the second secure 
device (1) comprjse/s a storage (6) for storing 



at least a third 



authentication and/or release control of the 



information unit 



first device (2) 



key for external 



and processing means (7) for 



processing the third key. 



The system according to claim 23, wherein the 



comprises means to initiate 



download of a new release of the information 



uni t , depending 
third key. 



(4 



The system acc 
central server 
randomizing the 
signature betwedn 
providing the ir. 
to the first dev 



orbing 



on the respective status of the 



to claim 21, wherein the 
) comprises a randomizer for 
at least first key and/or the 

different sessions of 
formation unit from the issuer 
ice . 



The system according to claim 14, wherein the 
first information processing device (2) is a 
terminal device and the second secure 
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information processing device (1) is a portable 
device. 
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The system according to claim 26, wherein the 
terminal device is ja chip card reader and the 
portable device is /a chip card. 
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A chip card (1) for securely handling an 
information unit bp/ interoperating with an 



information handl 



ing terminal device (2) , 



comprising a storage (6) for storing an at 



least one key for 



The chip card 
processing means 
control is contrc 



according 



The chip card 
processor (7) runjs 
terminal device ( 
device attached 



according 



to 



The chip card ac 
comprising means 
least one second 
5) and/or means 
first key by usi 
and/or means to 
signature key for 



the cryptographic process 



to claim 28, wherein 
7) performing an access 
led by an information unit. 



to claim 28, wherein a 
specific functions on the 

5) or on at least a second 
the terminal device (2, 5). 



cording 



to claim 28, further 
or transferring of the at 
key to the terminal device (2, 
fpr decrypting of the at least 
njj the at least second key 
initiate transfer of the 
signature verification. 
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The chip card according to claim 30, wherein a 
non- erasable storage (6) stores the second key 
and/or the signature key at time of its 
issuing. / 

The chip card according to claim 32, further 
comprising a stora/ge (6) for storing at least a 
third key for external authentication and/or 
release control of the information unit and 
processing means 1(7) for processing the third 
key. I 

The chip card according to claim 33, wherein 
said processing means (7) initiates download of 
a new release ofj the information unit, 
depending on thej respective status of the third 
key. I 

A chip card accepting device (2) , in particular 
a chip card reaper, for securely handling an 
information uniit by interoperating with a chip 
card (1) , comprising a storage for storing the 
information unit. 

The chip card /accepting device according to 
claim 35, furtjher comprising means for 
decrypting the information unit by using at 
least one keyf 

accepting device according to 
her comprising means for 
gital signature. 
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The chip card 
claim 36, fur 



t 



verifying a di 
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The chip card accepting device according to 
claim 37, further comprising means for 
downloading the encrypted information unit, the 
at least one k/ey and the digital signature from 
a central server (4) . 
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40 



The chip card! accepting device according to 
claim 35, furlther comprising a storage for 
storing at leiast a third key for external 
authentication and/or release control of the 
information unit and processing means for 
processing the third key. 



ur 



The chip car 
claim 39, f 
download of 
unit, 
third key 



depending 



1 accepting device according to 
ther comprising means to initiate 
new release of the information 
on the respective status of the 
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